Secure performance enhancing proxy: to ensure end-to-end security and enhance TCP performance over IPv6 wireless networks

Authors:
Venkatesh Obanaik;Lillykutty Jacob;A. L. Ananda
Affiliations:
Communication and Internet Research Lab, School of Computing, National University of Singapore, Singapore;Communication and Internet Research Lab, School of Computing, National University of Singapore, Singapore;Communication and Internet Research Lab, School of Computing, National University of Singapore, Singapore
Venue:
Computer Networks: The International Journal of Computer and Telecommunications Networking
Year:
2006

Citing 10
Cited 0

Improving TCP/IP performance over wireless networks

MobiCom '95 Proceedings of the 1st annual international conference on Mobile computing and networking
M-TCP: TCP for mobile cellular networks

ACM SIGCOMM Computer Communication Review
A comparison of mechanisms for improving TCP performance over wireless links

IEEE/ACM Transactions on Networking (TON)
Packet reordering is not pathological network behavior

IEEE/ACM Transactions on Networking (TON)
Probable Plaintext Cryptanalysis of the IP Security Protocols

SNDSS '97 Proceedings of the 1997 Symposium on Network and Distributed System Security
Distinguishing Congestion Losses from Wireless Transmission Losses: A Negative Result

IC3N '98 Proceedings of the International Conference on Computer Communications and Networks
WTCP: An Efficient Mechanism for Improving TCP Performance over Wireless Links

ISCC '98 Proceedings of the Third IEEE Symposium on Computers & Communications
I-TCP: indirect TCP for mobile hosts

ICDCS '95 Proceedings of the 15th International Conference on Distributed Computing Systems
Measuring the Impact of Slow User Motion on Packet Loss and Delay over IEEE 802.11b Wireless Links

LCN '03 Proceedings of the 28th Annual IEEE International Conference on Local Computer Networks
A multi-layer IPsec protocol

SSYM'00 Proceedings of the 9th conference on USENIX Security Symposium - Volume 9

Quantified Score

Hi-index	0.00

Visualization

Abstract

It is a well known fact that TCP is incapacitated to distinguish congestion losses in the wired network from corruption losses occurring in the wireless link and this inability results in poor performance of TCP in a hybrid wired-cum-wireless scenario. Most of the solutions previously proposed to address this problem are designed oblivious of the security considerations and violate end-to-end TCP semantics. Achieving improved TCP performance together with ensuring end-to-end security necessitates the co-existence of security mechanisms like IPSEC and performance enhancing solutions. However, IP security and TCP performance have been traditionally dealt with in a mutually exclusive manner. We propose an innovative mechanism, Secure Performance Enhancing Proxy (SPEP), to address the seemingly arduous problem of enhancing TCP performance over wireless networks, preserving end-to-end TCP semantics as well as ensuring end-to-end security. The proposed SPEP scheme decouples error detection and error distinction mechanism from error recovery mechanism which not only facilitates in performance improvement but also offers multifarious advantages discussed in the paper. We have implemented the proposed scheme in FreeBSD 4.5 and conducted experiments in a controlled test bed setup. Our results show improved TCP performance in a secured environment with introduction of minimal overhead.